Thursday, 19 April, 2012

EVA Trusttm Seal

 

Enterprise

vulnerability

ASSESSMENT &

AVOIDANCE TECHNOLOGY

 

EVA Trusttm Seal

________________________________

Maturity Model

________________________________


‘‘For any business relying on cloud services, security is mandatory and not negotiable.  Thus, each cloud service provider needs a reliable third party to assess the effectiveness and integrity of their security posture. This is the only way to achieve trust and stay in a long term business relationship in a globally competitive virtual world.’‘, June 2012

Frédérick Henry, IMITI CGEIT CRISC CISM CISA CISSP

Chief Technology Officer, EVA Technologies

EVA Trusttm Seal - A Commitment to Secured Services

FOR YOUR ENTERPRISE

  1. Know what your real maturity level is across your entire enterprise, and take

  2. decisions that are optimized because they are based on real facts


FOR CLOUD PROVIDERS

  1. Demonstrate that you actively ensure the wellbeing of your customers security


FOR CLOUD CLIENTS

  1. Get the certitude that your Cloud provider takes your security to heart


MATURITY EVALUATION

THIRD PARTY VALIDATED

CONTINUOUS EVALUATION FRAMEWORK

WITH FULL TECHNOLOGY OVERSIGHT


The EVA trusttm approach resolves two key issues that plague most enterprises:


#1  Enterprises often do not address vulnerability management because tools are too restrictive in pricing, and qualified human resources are not available


#2  Current compliance models use pass or fail models that pigeon hole (force) enterprises to exagerate responses to motivate a pass score.  Attention to details or to the maturity of audited subjects is not addressed, and optimization possibilities are not identified.  Management is left with a feeling that everything is perfect, because they passed an audit, but the reality is that several key areas could use improvement, but will never get attention.


The EVA trusttm Blue Seal service is designed to provide enterprises with continuous vulnerability analysis including intrusion testing.  Not done for compliance on the 31st of December, but done continuously across the year.  Enterprises cannot afford one or in most cases several commercial testing suites, so we make them available so you benefit from a complete toolset that includes the expertise to operate them, and assist your operations staff in issue resolution.  All this, in a managed service approach, that costs a fraction of attempting to do it yourself.


The EVA trusttm Green Seal is a compliance methodology establishing that you have been vetted by independent security professionals and that a maturity index for each evaluated category is documented and available online for review.


Getting the EVA Trusttm Seal, demonstrates to customers your commitment to providing mature and security conscious services, and by doing so, you declare your trustworthiness.


VULNERABILITY & EXPLOITABILITY TESTING

CONTINUOUS EVALUATION PROGRAM

MATURITY EVALUATION

THIRD PARTY VALIDATED

CONTINUOUS EVALUATION FRAMEWORK


The EVA trusttm Gold Seal is the same compliance methodology as the green seal, that includes full technological oversight.  This means that not only has the maturity indexes been generated and reviewed by an independent third party, but a full technical review including continuous oversight is being carried out to maintain compliance.


Getting the EVA Trusttm Gold Seal, not only demonstrates to customers your commitment to providing mature and security conscious services, but also indicates that you have a third party overseeing your technology every step of the way.